View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
4706Composrcore_rich_mediapublic2021-10-31 17:262021-10-31 17:26
ReporterChris Graham Assigned ToChris Graham  
PriorityhighSeverityminor 
Status resolvedResolutionfixed 
Product Version10.0.38 
Fixed in Version10.0.39 
Summary4706: Symbol parameters need to be entity-decoded in semihtml markup
DescriptionIf you edit the Admin Zone home page with WYSIWYG on, it'll be re-saved in semihtml. However, the RSS block uses a URL to specify news to load containing ampersands, and this will have been entity-escaped. We need to therefore unentity-escape the block parameters.

This generalises to all symbols.

This is consistent with re-editing with WYSIWYG, where literal parameters would be edited with entity-encoding transparent to the user.
It does have the implication (trade off) that users hand-coding semihtml with block symbols will need to potentially double-escape any code that needs escaping. This is a very rare situation though.

Directives and language references are left untouched, as it is more likely users of this will want to have literal escaping as pass-through, plus there is no known real-world bug to be solved.
TagsNo tags attached.
Attach Tags
Attached Files
Time estimation (hours)
Sponsorship open

Sponsor

Date Added Member Amount Sponsored

Relationships

Search Commits
has duplicate 4705 ClosedChris Graham RSS feed issue? 

Activities

admin

2021-10-31 17:26

administrator   ~7156

Fixed in git commit ecfc431f3 (https://gitlab.com/composr-foundation/composr/commit/ecfc431f3 - link will become active once code pushed to GitLab)

A hotfix (a TAR of files to upload) has been uploaded to this issue. These files are made to the latest intra-version state (i.e. may roll in earlier fixes too if made to the same files) - so only upload files newer than what you have already. If there are files in a hot-fix that you don't have then they probably relate to addons that you don't have installed and should be skipped. Always take backups of files you are replacing or keep a copy of the manual installer for your version, and only apply fixes you need. These hotfixes are not necessarily reliable or well supported. Not sure how to extract TAR files to your Windows computer? Try 7-zip (http://www.7-zip.org/).
hotfix-4706, 2021-10-31 5pm.tar (239,616 bytes)

Issue History

Date Modified Username Field Change
2021-10-31 17:26 Chris Graham Relationship added has duplicate 4705